Community Area

by
George Chetcuti
[Published on 6 Nov. 2013 / Last Updated on 6 Nov. 2013]

Microsoft is aware of a vulnerability in previous versions of Office that is actively exploited in targeted attacks using crafted Word documents sent by email. The vulnerability will not affect Office 2013 but will affect older versions such as Office 2003 and 2007.

Until Microsoft works on a final update user are urged to read Security Advisory 2896666 which includes a proactive Fix it workaround for blocking this attack.